tj_nextron | Triage

Resubmissions

10/10/2024, 11:17

241010-nd1hjazfjn 3

10/10/2024, 11:16

241010-ndkgbavbla 3

Sharing

Copy URL Twitter E-mail

General

Target

tj_nextron
Size

40KB
MD5

78626ea92f04c61d5f564c539f140e16
SHA1

78059a9d2fa5a57f60a252223de2693d6d928aaa
SHA256

93821ab6036837ec2777c649eb450c272f7e0cef6715db17472d0a14262af783
SHA512

ccd9efbdd09304850f0cbee8a5459f53b104d269d2135b9698a992e61ed8b3d7c0b3a64e9a4cd9243fd31c767099321151c85fcf9c8811b44af68c39e68499ba
SSDEEP

384:TKWA292uihRuzRuvk5PXigG9jTe6RiPMDCL5:T7v2uRF3Fo9jaPWc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
tj_nextron

Files

tj_nextron
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ